Best way to filter "Nachi pings"?
From: Brett Glass (brett_at_lariat.org)
Date: 10/27/03
- Previous message: Bill Swingle: "Re: IPSec VPNs: to gif or not to gif"
- Next in thread: Kris Kennaway: "Re: Best way to filter "Nachi pings"?"
- Reply: Kris Kennaway: "Re: Best way to filter "Nachi pings"?"
- Reply: Gregory Sutter: "Re: Best way to filter "Nachi pings"?"
- Maybe reply: Jarkko Santala: "Re: Best way to filter "Nachi pings"?"
- Maybe reply: Brett Glass: "Re: Best way to filter "Nachi pings"?"
- Maybe reply: Brett Glass: "Re: Best way to filter "Nachi pings"?"
- Maybe reply: Gaspar Chilingarov: "Re: Best way to filter "Nachi pings"?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 27 Oct 2003 00:31:46 -0700 (MST) To: security@freebsd.org
We're being ping-flooded by the Nachi worm, which probes subnets for
systems to attack by sending 92-byte ping packets. Unfortunately,
IPFW doesn't seem to have the ability to filter packets by length.
Assuming that I stick with IPFW, what's the best way to stem the
tide?
--Brett Glass
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Bill Swingle: "Re: IPSec VPNs: to gif or not to gif"
- Next in thread: Kris Kennaway: "Re: Best way to filter "Nachi pings"?"
- Reply: Kris Kennaway: "Re: Best way to filter "Nachi pings"?"
- Reply: Gregory Sutter: "Re: Best way to filter "Nachi pings"?"
- Maybe reply: Jarkko Santala: "Re: Best way to filter "Nachi pings"?"
- Maybe reply: Brett Glass: "Re: Best way to filter "Nachi pings"?"
- Maybe reply: Brett Glass: "Re: Best way to filter "Nachi pings"?"
- Maybe reply: Gaspar Chilingarov: "Re: Best way to filter "Nachi pings"?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
